Description: PDF :- http://www.shmoocon.org/2012/presentations/TTL-Penetration-Shmoo.pdf
In the world of information security, it's not a matter of how anymore.. it's a matter of when. With the advent of penetration tools such as Metaspolit, AutoPwn, etc.; and day-to-day use of in-secure operating systems, applications and websites; reactive systems have become more important than proactive systems. Discovery of penetration by out-of-band processes and being able to determine the when and how to then mitigate the particular attack has become a stronger requirement than active defense. I will discuss the basic precepts of this idea and expand with various types of tools that help resolve the issue. Attendees should be able to walk away from this discussion and apply the knowledge immediately within their environment.
Branson is a 23 year veteran of unix and security. He started as a cryptologist for the US Navy and has since worked on NASA Shuttle Projects, TSA security and monitoring systems, internet search engines and continues to support many open-source projects. He founded sandSecurity to provide policy and technical audits, support and training for IT Security, System Administrators and internet and unix Developers. Branson has his CEH, GSEC, GCIH and several other credentials, but generally likes to spend time answering the question I bet you can't.
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.